πΊπΈ
WeekendWeb
2026-06-12 18:58:07
(1 month ago)
Wordpress Vunerability attack
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 18:28:49
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:28:41.899334 2026] [security2:error] [pid 26152:tid 26152] [client 109.175.39.133:56098] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 109.175.39.133 (+1 hits since last alert)|watlab.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "watlab.com"] [uri "/xmlrpc.php"] [unique_id "aixP2ZL_Idaq6eWgkI4HaQAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 16:57:37
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:57:30.514646 2026] [security2:error] [pid 31086:tid 31086] [client 109.175.39.133:6240] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 109.175.39.133 (+1 hits since last alert)|intrinsicdiscovery.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "intrinsicdiscovery.com"] [uri "/xmlrpc.php"] [unique_id "aiw6eq-rYVrb50OlAfdbcQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Kenshin869
2026-06-12 15:54:09
(1 month ago)
Wordpress unauthorized access attempt
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-12 14:55:48
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 10:55:42.926216 2026] [security2:error] [pid 21611:tid 21611] [client 109.175.39.133:20952] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 109.175.39.133 (+1 hits since last alert)|eta-mct.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eta-mct.com"] [uri "/xmlrpc.php"] [unique_id "aiwd7mlSfuvzIQlpH2sTTAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-06-12 12:36:55
(1 month ago)
3.503 requests with url.path */xmlrpc.php
Brute-Force
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-12 09:27:44
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:27:39.178620 2026] [security2:error] [pid 15325:tid 15325] [client 109.175.39.133:45409] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 109.175.39.133 (+1 hits since last alert)|justicehoward.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "justicehoward.com"] [uri "/xmlrpc.php"] [unique_id "aivRC7sIwgGBJWXmAh68UwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-12 08:17:30
(1 month ago)
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 07:51:28
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 03:51:25.348732 2026] [security2:error] [pid 6201:tid 6201] [client 109.175.39.133:32488] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 109.175.39.133 (+1 hits since last alert)|drayvian.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drayvian.com"] [uri "/xmlrpc.php"] [unique_id "aiu6fUSTk8k3Jdh2A7KSQAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 07:18:11
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 109.175.39.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 03:18:06.544434 2026] [security2:error] [pid 8141:tid 8141] [client 109.175.39.133:33347] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 109.175.39.133 (+1 hits since last alert)|drjasonkolber.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drjasonkolber.com"] [uri "/xmlrpc.php"] [unique_id "aiuyroluWecI_NjTDGBCCAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
grassau.com
2026-06-12 07:16:23
(1 month ago)
(wordpress) Failed wordpress login from 109.175.39.133 (BA/Bosnia and Herzegovina/Federation of Bosn ...
show more
(wordpress) Failed wordpress login from 109.175.39.133 (BA/Bosnia and Herzegovina/Federation of Bosnia and Herzegovina/Sarajevo/-)
show less
Brute-Force